1. urllib3 Security Flaw Bypasses Redirect Protections Despite Disabled Retries
A critical vulnerability in urllib3, a widely-used HTTP client library for Python, allows redirect requests to proceed even when application developers explicitly disable retry mechanisms. The flaw, tracked as CVE-2025-50181 and catalogued as GHSA-pq67-6m6q-mj2v, stems from how urllib3 consolidates redirect and retry h...